Techniques are described for algorithmic confidential computing on personal data and to an insights provider providing access to personal data using limited-use anonymous insights records stored on a blockchain. To enable service providers and other queriers to obtain such insights information in a secure manner, an insights provider creates an anonymous insights record that is recorded on a blockchain responsive a request from a subject indicating that the subject desires to share one or more items of insights information. An anonymous insights record contains a single-use (or limited number of use) random number that is used by the insights provider to index the data in a shards index database for the relevant shards of the insights data file. These multiple segments can then be stored across multiple separate repositories using a decentralized file storage service.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
2. The computer-implemented method of claim 1, wherein the data file is encrypted, and wherein the method further comprises using a secure enclave service to decrypt the data file and provide the insight data to a requesting client device.
This invention relates to secure data processing systems, specifically methods for handling encrypted data files to generate and provide insights while maintaining data security. The problem addressed is the need to process sensitive or confidential data in a way that prevents unauthorized access while still allowing authorized users to derive meaningful insights from the data. The method involves receiving a request from a client device to process a data file that is encrypted. The encrypted data file is then decrypted using a secure enclave service, which is a hardware-based security feature designed to protect sensitive operations from external threats. After decryption, the data is processed to generate insight data, which represents derived information or analytics from the original data. The insight data is then provided to the requesting client device, ensuring that the raw data remains protected while only the processed insights are exposed. The secure enclave service ensures that decryption and processing occur in a trusted execution environment, preventing unauthorized access to the decrypted data. This approach is particularly useful in scenarios where data privacy and security are critical, such as in financial, healthcare, or enterprise applications. The method may also include additional steps such as validating the request, authenticating the client device, or logging the processing activities to enhance security and compliance.
3. The computer-implemented method of claim 1, wherein the subject random number is a first subject random number, and wherein the subject is further associated with a second subject random number associated with the data file that includes the insight data related to the subject.
This invention relates to a computer-implemented method for managing random numbers associated with subjects and their related data files. The method addresses the challenge of securely and efficiently linking subjects to their associated data while maintaining privacy and integrity. The system generates and associates multiple random numbers with each subject, including a first subject random number and a second subject random number. The first subject random number is used to identify the subject within the system, while the second subject random number is specifically linked to a data file containing insight data related to the subject. The method ensures that the subject's identity and their associated data remain securely connected without direct exposure of personally identifiable information. The system may also include steps for generating, storing, and retrieving these random numbers in a way that maintains data integrity and privacy. The use of multiple random numbers allows for flexible and secure data management, enabling applications such as medical research, user analytics, or any scenario requiring the association of subjects with their data while preserving confidentiality. The method may further involve encryption, hashing, or other security measures to protect the random numbers and the associated data.
4. The computer-implemented method of claim 1, wherein the message is received from a client that identifies a record on a blockchain indicating that the request is pending processing, and wherein the record on the blockchain is created based on a client computing device invoking a smart contract associated with a record on the blockchain identifying the subject random number.
This invention relates to a computer-implemented method for processing requests in a blockchain-based system. The method addresses the problem of efficiently managing and tracking pending requests in a decentralized environment where multiple parties may need to verify or process the same request. The solution involves using blockchain technology to create and track records of pending requests, ensuring transparency and immutability in the process. The method involves receiving a message from a client, where the client identifies a record on a blockchain that indicates a request is pending processing. This blockchain record is created when a client computing device invokes a smart contract associated with a record on the blockchain that identifies a subject random number. The smart contract execution generates the blockchain record, which serves as proof that the request is pending. This approach ensures that all parties involved can verify the status of the request by checking the blockchain, reducing the risk of duplicate processing or disputes over request validity. The use of a random number in the blockchain record further enhances security by making it difficult to predict or manipulate the request's status. The method is particularly useful in applications requiring high levels of trust and transparency, such as financial transactions, supply chain tracking, or decentralized identity verification.
5. The computer-implemented method of claim 1, further comprising generating, by the insights provider system, the data file using a secure enclave to compute the insight data related to the subject, and wherein the insight data is derived from data obtained by the insights provider system from at least one data provider.
This invention relates to a computer-implemented method for securely generating and processing insight data within a secure enclave. The method addresses the challenge of protecting sensitive data while deriving actionable insights from multiple data sources. The system involves an insights provider that collects data from at least one external data provider. The collected data is processed within a secure enclave, a hardware-based security feature that isolates sensitive computations from the main operating system, ensuring confidentiality and integrity. The secure enclave computes insight data related to a specific subject, such as a user or entity, while preventing unauthorized access to the underlying raw data. This approach enhances privacy and security by restricting data exposure to only the necessary processed insights. The method ensures that the data providers' information remains protected, while still enabling the generation of valuable insights for the subject. The secure enclave's cryptographic protections prevent tampering or unauthorized access during computation, making it suitable for applications requiring high levels of data security, such as financial analysis, healthcare diagnostics, or personalized recommendations. The system dynamically integrates data from multiple sources, allowing for comprehensive insights while maintaining strict privacy controls.
6. The computer-implemented method of claim 1, wherein the data file includes data indicating a plurality of separate insights related to the subject.
This invention relates to a computer-implemented method for processing data files containing multiple insights related to a subject. The method addresses the challenge of efficiently organizing and analyzing large datasets where insights are distributed across different sections or formats. The system extracts and categorizes these insights, enabling users to access and interpret them in a structured manner. The method involves parsing the data file to identify distinct insights, which may be embedded in various forms such as text, metadata, or structured fields. Each insight is then processed to determine its relevance, context, and relationship to the subject. The insights are stored in a searchable database, allowing users to query and retrieve them based on specific criteria. The method also supports filtering and ranking insights to prioritize the most relevant information. This approach improves data accessibility and decision-making by consolidating fragmented insights into a coherent structure. The system can be applied in fields like business intelligence, research analysis, or knowledge management, where extracting meaningful patterns from complex datasets is critical. The method ensures that insights are accurately captured, organized, and presented to users in a user-friendly format.
9. The computer-implemented method of claim 1, wherein a storage location of each of the plurality of shards of the data file is stored in a shards index database managed by the insights provider system, and wherein the storage location of each of the plurality of shards of the data file is indexed in the shards index database by the subject random number.
This invention relates to a distributed data storage system for managing and retrieving sharded data files. The system addresses the challenge of efficiently storing and locating fragmented data across multiple storage locations while ensuring secure and organized access. The method involves dividing a data file into multiple shards, each assigned a unique random number as an identifier. These shards are distributed across different storage locations, and their storage addresses are recorded in a centralized shards index database. The database organizes the storage locations by the assigned random numbers, enabling quick retrieval of any shard using its identifier. This approach enhances data security by obscuring the original file structure and improves retrieval efficiency by maintaining a structured index of shard locations. The system is particularly useful in environments requiring high data integrity, such as cloud storage or distributed computing systems, where tracking fragmented data is critical. The random number indexing ensures that shard locations are not predictable, adding an additional layer of security against unauthorized access. The method also supports dynamic updates to the shards index database, allowing for real-time tracking of shard movements or modifications.
10. The computer-implemented method of claim 1, wherein the insight data includes at least one of: financial services information related to the subject, healthcare information related to the subject, or demographic information related to the subject.
This invention relates to a computer-implemented method for processing and analyzing insight data related to a subject. The method addresses the challenge of efficiently gathering and utilizing diverse types of data to generate meaningful insights about an individual or entity. The system collects and processes data from multiple domains, including financial services, healthcare, and demographic information, to provide a comprehensive understanding of the subject. Financial services data may include transaction history, credit scores, or investment details, while healthcare data could encompass medical records, treatment plans, or insurance claims. Demographic information may cover age, location, education level, or employment status. The method integrates these disparate data sources to generate actionable insights, enabling applications such as personalized recommendations, risk assessment, or targeted services. By consolidating and analyzing this multi-domain data, the invention enhances decision-making processes in fields like finance, healthcare, and marketing. The system ensures data privacy and security while providing a unified view of the subject's profile. This approach improves efficiency and accuracy in deriving insights compared to traditional methods that rely on siloed data sources.
12. The system of claim 11, wherein the data file is encrypted, and wherein the instructions upon execution further cause the insights provider system to use a secure enclave service to decrypt the data file and provide the insight data to a requesting client device.
13. The system of claim 11, wherein the subject random number is a first subject random number, and wherein the subject is further associated with a second subject random number associated with the data file that includes the insight data related to the subject.
This invention relates to systems for managing and processing data associated with subjects, particularly in contexts where random numbers are used to identify or link data files. The system addresses the challenge of securely and efficiently associating multiple data files with a single subject while maintaining privacy and data integrity. The system includes a data processing module that generates and assigns random numbers to subjects and their associated data files. A first random number is assigned to the subject, while a second random number is assigned to a data file containing insight data related to the subject. The system ensures that the second random number is linked to the first random number, allowing the data file to be correctly associated with the subject without exposing identifying information. This approach enhances data security by decoupling direct identifiers from the insight data, making it difficult for unauthorized parties to trace the data back to the subject. The system may also include mechanisms for validating the random numbers and ensuring consistency between the subject and the data file associations. This method is particularly useful in applications requiring high levels of data privacy, such as healthcare, research, or financial services, where sensitive information must be protected while still being accessible for analysis.
14. The system of claim 11, wherein the message is received from a client that identifies a record on a blockchain indicating that the request is pending processing, and wherein the record on the blockchain is created based on a client computing device invoking a smart contract associated with a record on the blockchain identifying the subject random number.
This invention relates to blockchain-based systems for managing requests, particularly in scenarios where a client needs to verify the status of a pending request. The problem addressed is ensuring transparency and reliability in tracking request processing by leveraging blockchain technology. The system involves a client computing device that interacts with a blockchain to create and verify records related to pending requests. When a client submits a request, a smart contract on the blockchain is invoked to generate a record that includes a unique identifier, such as a random number, associated with the request. This record indicates that the request is pending processing. The system then receives a message from the client, which references this blockchain record to confirm the request's status. The blockchain record serves as an immutable and verifiable proof that the request has been submitted and is awaiting processing. This approach enhances trust and accountability by providing a decentralized and tamper-proof way to track request statuses. The system ensures that all parties involved can independently verify the existence and state of the request without relying on a centralized authority. This method is particularly useful in applications where transparency and auditability are critical, such as financial transactions, supply chain management, or identity verification.
15. The system of claim 11, wherein the instructions upon execution further cause the insights provider system to generate the data file using a secure enclave to compute the insight data related to the subject, and wherein the insight data is derived from data obtained by the insights provider system from at least one data provider.
This invention relates to a secure data processing system that generates insights from external data sources while maintaining privacy and security. The system includes a secure enclave, a data processing module, and a data file generation module. The secure enclave is a protected execution environment that processes sensitive data without exposing it to unauthorized access. The data processing module retrieves data from at least one external data provider, which may include databases, APIs, or other sources. The system then processes this data within the secure enclave to generate insight data related to a specific subject, such as a user, device, or entity. The insight data is derived through secure computations, ensuring that raw data remains confidential. The data file generation module creates a structured data file containing the computed insights, which can be used for analysis, reporting, or decision-making. The system ensures that the data providers' information is accessed and processed securely, preventing unauthorized disclosure while enabling valuable insights to be extracted. This approach is particularly useful in applications requiring high levels of data privacy, such as financial analysis, healthcare diagnostics, or personalized recommendations.
16. The system of claim 11, wherein the data file includes data indicating a plurality of separate insights related to the subject.
This invention relates to a system for organizing and presenting data insights related to a subject. The system addresses the challenge of efficiently managing and retrieving multiple distinct insights derived from data analysis, ensuring they are logically structured and easily accessible. The system includes a data file that contains information about a subject, and this data file is configured to store multiple separate insights related to that subject. Each insight represents a distinct piece of knowledge or analysis derived from the data. The system may also include a user interface that allows users to interact with the data file, view the insights, and navigate between them. Additionally, the system may include a processing module that generates or processes the insights, ensuring they are accurately derived and properly formatted for storage in the data file. The system may further include a storage module that manages the data file, allowing for efficient retrieval and organization of the insights. The overall goal is to provide a structured and user-friendly way to access and utilize multiple insights related to a subject, improving decision-making and data analysis processes.
19. The system of claim 11, wherein a storage location of each of the plurality of shards of the data file is stored in a shards index database managed by the insights provider system, and wherein the storage location of each of the plurality of shards of the data file is indexed in the shards index database by the subject random number.
The system is designed for managing and retrieving distributed data files, addressing challenges in efficiently locating and accessing fragmented data across multiple storage locations. The system divides a data file into multiple shards, each stored in a distinct location. A shards index database, managed by an insights provider system, tracks the storage location of each shard. The database indexes these locations using a subject random number, ensuring that each shard can be uniquely identified and retrieved. This approach enhances data retrieval efficiency by allowing the system to quickly locate and access the relevant shards based on the random number. The insights provider system oversees the indexing process, ensuring that the shards index database remains accurate and up-to-date. This method is particularly useful in distributed storage environments where data is spread across multiple nodes or storage units, improving performance and reliability in data access operations. The use of a random number for indexing provides a secure and scalable way to manage and retrieve fragmented data.
20. The system of claim 11, wherein the insight data includes at least one of: financial services information related to the subject, healthcare information related to the subject, or demographic information related to the subject.
A system for processing and analyzing subject-related data includes a data collection module that gathers information from various sources, such as financial services, healthcare, and demographic records. The system also features a data processing module that extracts and organizes relevant insights from the collected data. These insights may include financial services information, such as transaction history, credit scores, or investment details; healthcare information, including medical records, treatment plans, or insurance claims; and demographic information, such as age, location, or employment status. The system further includes an analysis module that evaluates the extracted insights to identify patterns, trends, or correlations. This analysis can support decision-making, risk assessment, or personalized recommendations. The system may also include a user interface for displaying the insights and analysis results, allowing users to interact with the data and derive actionable conclusions. The system is designed to enhance data-driven decision-making by integrating and analyzing diverse types of subject-related information.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
August 18, 2021
November 22, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.